Overview

overview

10

Static

static

hesaphareketi-01.exe

windows7-x64

1

hesaphareketi-01.exe

windows10-2004-x64

10

Analysis

  • max time kernel
    132s
  • max time network
    163s
  • platform
    windows7_x64
  • resource
    win7-20220812-en
  • resource tags

    arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system
  • submitted
    14-10-2022 17:53

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    hesaphareketi-01.exe

  • Size

    88KB

  • MD5

    b512acd6e24d0dd3f81451daf4e3cd59

  • SHA1

    7463697bb4396a5193c6ab690e240558beb921b9

  • SHA256

    a1f05c1b3abcd13e9666882d300ab3e39865b0ace466e8e62737787caacf77b0

  • SHA512

    8de538963955c57e30ac45debc5d5c00305ea41d2aa6d539d0a62c5b55b0208ae123bb9e85787921fcb00c8b3b0b4d96767f4d7d03c604e553aeb3016a198a17

  • SSDEEP

    384:YAfkHnAev2PRr3Gy+AzJLVK8SykdvA98pgNkDlmSyqf2odsgwjbYJp2trlq8R:YzHw5z5LVKkSohN0lUqf2TbYJWRqK

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\hesaphareketi-01.exe
    "C:\Users\Admin\AppData\Local\Temp\hesaphareketi-01.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:1928

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1928-54-0x0000000000F50000-0x0000000000F6C000-memory.dmp

    Filesize

    112KB

    Download

  • memory/1928-55-0x0000000074AD1000-0x0000000074AD3000-memory.dmp

    Filesize

    8KB

    Download